VULHUB ™

PHPMyExplorer is a free application that provides a web user interface for managing web content on a host. It works with Apache for Microsoft Windows systems and also on Linux platforms. An input validation problem exists with PHPMyExplorer. It is possible for a user to browse the filesystem of the host using specially crafted a URL using variations of '../' sequences to break out of wwwroot. As a result the attacker will be able to display arbitrary web-readable files, potentially disclosing sensitive information about the host.

PHPMyExplorer is a free application that provides a web user interface for managing web content on a host. It works with Apache for Microsoft Windows systems and also on Linux platforms. An input validation problem exists with PHPMyExplorer. It is possible for a user to browse the filesystem of the host using specially crafted a URL using variations of '../' sequences to break out of wwwroot. As a result the attacker will be able to display arbitrary web-readable files, potentially disclosing sensitive information about the host.